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(54) Data security En a computer network 

(57) A microcomputer 1 is disclosed which is adapted for connecting in a computer network where there is shared access to 
stored data. The microcomputer comprises a security circuit 5 which controls operation of an address buffer 6 according to 
a table of access conditions retrieved from non-volatile memory in response to an input password, there being one access 
condition for each block of memory addresses. Passwords have assigned security levels and a respective table of access 
conditions for each level is held in the non-volatile memory. The relevant memory address block is identified by reading of a 
memory map that has been created and stored by the security circuit 5 in the non-volatile memory. The microcomputer thus 
assists in preventing accidental amendment of data, fraud by amendment of financial data, and access to confidential data. 
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Security in a Computer Apparatus 



The present invention relates to security in a computer 
apparatus, and more particularly to security of stored data in 
a network computer apparatus . 

Control of access to stored data to prevent loss of 
confidentiality of the data, fraud involving financial data, 
accidental loss or amendment of the data or deliberate 
falsification of data has been achieved with some success for 
stand-alone computers. However, where there is shared access 
to stored data in a computer network, such control has not 
been achieved without excessively limiting the manner in which 
users may use the network and introducing time delays in 
operation. This is particularly true where the network may be 
accessed by a remote computer. Indeed, in some cases the 
manner in which access is controlled in these situations in 
many instances renders a computer network useless. For 
example, where interlinked by communications links, and each 
is used to monitor manufacturing or project activities on- 
site, programs for controlling access to data can require 
excessively large memory areas, and generate excessive 
communications traffic and introduce unnecessary restrictions 
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to the extent that the networks fail to perform their most 
important functions which is to provide up-to-date information 
when and where it is required. 

The present invention is directed towards solving these 
5 problems . 

According to the invention, there is provided a microcomputer 
adapted to be connected in a network for shared access to 
stored data and to allow access to the stored data in a 
controlled manner to maintain confidentiality of data, avoid 
10 fraud and accidental loss or amendment of data, the 
microcomputer comprising :- 

a control unit having a security circuit; an arithmetic 
unit; and a memory transfer unit; 

a memory bus connecting the memory transfer unit to a 
15 random access memory, and to a non-volatile memory 

including a fixed disk and a shared memory device via a 
network interface ; 

an input /output bus connecting the arithmetic unit to a 
keyboard encoder, to a video controller and to a printer 
20 controller connected respectively to a keyboard, a visual 

display unit and a printer; 
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wherein the security circuit comprises means for 
directing storage in the non-volatile memory of security 
data comprising a plurality of user passwords, a security 
level for each password, and a table comprising access 
conditions for each block of a memory map, there being 
one table for each security level, and wherein the 
security circuit comprises means for automatically 
retrieving relevant security data for storage in the 
random access memory circuit, for assigning a security 
level to a received password and for interactively 
controlling operation of the memory transfer circuit 
according to the access conditions when requests are 
received at the keyboard for access to data. 



Ideally, there are three possible access conditions, namely, 
15 read and write disable, read enable and write disable and read 
and write enable. 



In one embodiment, the security circuit interactively controls 
operation of the memory transfer circuit by control of memory 
instructions stored in an address buffer of the memory 
20 transfer circuit. 



The invention will be more clearly understood when the 
following description of some preferred embodiments thereof, 
given by way of example only with reference to the 
accompanying drawings in which:- 
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Fig 1 is a block diagram of a microcomputer of the 
invention adapted for connecting in a computer network; 

Fig 2 is a flow diagram illustrating operation of the 
microcomputer; and 

5 Fig 3 is an illustration of portion of a sample security 

table generated in the microcomputer. 

Referring to the drawings , and initially to Fig 1 there is 
illustrated a microcomputer of the invention indicated 
generally by the reference numeral 1. The microcomputer 1 is 

10 adapted to be connected in a computer network where there is 
shared access to data stored in a common memory device in the 
network . The microcomputer 1 comprises a control unit 
including a program counter 2, an instruction register 3 and 
a control and decode circuit 4 . A security circuit 5 is also 

15 connected in the control unit. The control unit is connected 
to a memory transfer unit including an address buffer 6 and a 
data buffer 7, both of which are connected to a memory bus 8. 
An arithmetic unit comprising an accumulator 9 and an adder 10 
is disposed between the control unit and an input/output bus 

20 11. The memory bus 8 is connected to a random access memory 
circuit 15, to a fixed disk drive 16 and to a network 
interface 17. The input/output bus 11 receives inputs from 
the keyboard encoder 18 connected to a keyboard 19 and 
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provides outputs to a video controller 20 for a visual display 
unit (VDU) 21 and a printer controller 22 for a printer 23. 

In operation, the microcomputer 1 is connected via the network 
interface 17 in a computer network where there is shared 

5 access to a common memory device. Such a computer network 
would be arranged to carry out many different types of data 
processing operations according to stored data and programs 
in the shared memory device. Each microcomputer would also 
have data and programs stored in the fixed disk 16. Referring 

0 specifically to Pigs 2 and 3, operation of the microcomputer 
1 to control access to data is illustrated. 



Initially, the security circuit 5 directs storage in non- 
volatile memory which may be either the fixed disk 17 or the 
common memory device accessed via the network interface 17, of 
a memory map of 16 Kbyte blocks of addresses of stored data. 
Further, the security circuit 5 directs storage in non- 
volatile memory of a table made up of access conditions for 
each block of the memory map. Portion of such a table is 
shown in Pig 3. In this embodiment, there are five tables 
stored, one for each of five security levels identified by the 
numerals A, B, C, D and E. Security level A allows most 
access to data whereas security level E allows least access. 
Each table indicates one of three possible access conditions 
for each block of the memory map. 
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In Fig 2 , the step of creating a memory map is indicated by 
the numeral 30 and of creating security levels and tables of 
access conditions by the numeral 31. In step 32, each 
password which is received from a supervisor who has full 
5 access to the data is assigned a security level according to 
the supervisor's instructions. The security circuit 5 directs 
storage of the password and of the security level in non- 
volatile memory. When a user wishes to have data processing 
operations carried out on the computer network, a password is 

10 received at the keyboard 19 in step 33 and in step 34 , the 
security circuit retrieves the password for storage in the 
random access memory circuit 15 and determines the relevant 
security level A, B, C, D or E. The relevant table of access 
conditions for the security level is retrieved in step 35 . 

15 When a request is received for access to data in step 36 , the 
security circuit 5 determines access conditions for data which 
would be addressed in step 37. For each block of 16 Kbytes of 
data there is an access condition in the relevant table and 
the three possible access conditions are as follows 

20 1. Read, write disable. 

2. Read enable and write disable. 



3 . Read and write enable . 



The first access condition applies where a user should not be 
allowed access to data to either view or amend the data. An 
example of such a situation is where a user who works in the 
purchasing department of an organisation is to be prevented 
from viewing the salary fields of a personnel system. The 
second access condition is suitable where a user is allowed to 
view the data such as purchasing prices, material delivery 
dates, without being allowed to amend the data. In these 
situations only certain specified users have the authority to 
amend data. It will be appreciated, for example, that if any 
unauthorised person amends data such as the purchasing price 
of an item, subsequent data processing operations carried out 
using that data would be useless. If the fact that there is 
a discrepancy is noticed, it would take a long time to find 
where the discrepancy arose and if it is not noticed the 
situation is even worse because wrong information is generated 
by the computer network. The third access condition is where 
a user such as a supervisor is allowed full access to data to 
both view it and to amend it, if required. For security level 
A, the table is made up fully of this access condition so that 
a supervisor may create new passwords and assign a security 
level and have full access to all of the data. This access 
condition may also be used selectively for different memory 
blocks according to the work which is carried out by each 
individual user. A portion of a sample table is shown in Fig 
3. This table includes mixed access conditions for different 
memory blocks and is used for security level C. 



For the memory address of the data which a user wishes to 
access, the security circuit 5 determines which block of the 
memory map the address falls within and retrieves from the 
table, the relevant access condition. If the access condition 
5 is number 1 above, the address buffer of the memory transfer 
unit is cleared by the security circuit 5 to prevent both 
write and read instructions being transmitted on the memory 
bus 8. If the access condition is number 2 above, the 
security circuit 5 prevents write enable instructions with 
10 step 39. If the access condition is number 2 above, the 
security circuit 5 allows both read and write enable 
instructions in the address buffer 6. 

It will be appreciated that by use of microcomputers of the 
invention in a computer network, control of access to stored 

15 data will be achieved in a relatively simple and inexpensive 
manner. This is very important for large organisations where 
many different types of data are stored and it is important to 
avoid fraud by amendment of financial data, to avoid data 
errors caused by inadvertent write instructions and to prevent 

20 access to confidential data. 

These operations are carried out in a sample manner by access 
to tables at each microcomputer in a network. In general it 
is preferable that the non-volatile memory used by the 
security circuit be the hard disk as this avoids the need for 



accesses to the common memory device in the network. However, 
where network traffic is not a problem, the common memory 
device may be used. 

The invention is not limited to the embodiments here and 
before described, but may be varied in construction and 
detail . 
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CLAIMS 

A microcomputer adapted to be connected in a network for 
shared access to stored data and to allow access to the stored 
data in a controlled manner to maintain confidentiality of 
5 data, avoid fraud and , accidental loss or amendment of data, 
the microcomputer comprising 

a control unit having a security circuit; an arithmetic 
unit; and a memory transfer unit; 

a memory bus connecting the memory transfer unit to a 
10 random access memory, and to a non -volatile memory 

including a fixed disk and a shared memory device via a 
network interface ; 

an input/output bus connecting the arithmetic unit to a 
keyboard encoder, to a video controller and to a printer 
15 controller connected respectively to a keyboard, a visual 

display unit and a printer; 

wherein the security circuit comprises means for 
directing storage in the non-volatile memory of security 
data comprising a plurality of user passwords, a security 
20 level for each password, and a table comprising access 

conditions for each block of a memory map, there being 
one table for each security level, and wherein the 



security circuit comprises means for automatically 
retrieving relevant security data for storage in the 
random access memory circuit , for assigning a security 
level to a received password and for interactively 
controlling operation of the memory transfer circuit 
according to the access conditions when requests are 
received at the keyboard for access to data. 

A microcomputer is claimed in claim 1, wherein there are 
three possible access conditions, namely, read and write 
disable, read enable and write disable and read and write 
enable . 

A microcomputer is claimed in claims 1 or 2, wherein the 
security circuit interactively controls operation of the 
memory transfer circuit by control of memory instructions 
stored in an address buffer of the memory transfer 
circuit. 

A microcomputer substantially as hereinbefore described, 
with reference to and as illustrated in the accompanying 
drawings . 
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